﻿<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
    <meta charset="UTF-8" />
    <title></title>
    <script src="WF/Scripts/easyUI145/jquery.min.js"></script>
    <script src="WF/Scripts/xss.js"></script>
    <script type="text/javascript">
        function XSS_Test() {
            var url = window.location.href + "?aa=<script>alert(11);<\/script>";

            window.location.href
            var str = filterXSS(url);
            alert(str);
            //window.location.href = str;

            debugger;
        }
    </script>
    
    <script src="WF/Scripts/configJFlow.js"></script>
</head>

<body  onclick="XSS_Test()">
    ssad
</body>
</html>
